On Tue, Dec 16, 2014 at 07:22:28PM -0500, James Knott wrote:
On 12/16/2014 04:23 PM, John Andersen wrote:
On 12/16/2014 1:19 PM, Carlos E. R. wrote:
We tested it in a lab without internet connection (wire removed). A switch that emulates an internet network (ie, internet addresses), but isolated, two routers, two separate local networks, some standalone voip hardware phones. No turn server anywhere, no connection to internet. And no firewall or NAT, so you were on the same unprotected network, two different segments, but the same network.
Apples and Oranges Carlos.
OK lets start tearing this appart.
This was on a private network and yes there was a firewall between the network at the various sites and the Internet.
Without knowing what rules controll the firewall, this is a meaningless statement.
However, as I pointed out a few times now, the connection between sites was via VPN. The VPN terminates on the router, where the firewall rules are set up.
So a VPN is restricted to a private psycial network, and blocked by a router with a firewall on it with limited capacity, I might add. This is BS. Come on. Stop playing with us. The prupose of a VPN is to between private networks.
But the VoIP traffic never passes directly over the Internet. It is always carried via VPN.
The VPN is ON the internet.... so what the heck are you talking about.
So, there is no way into that network, except as allowed by the firewall rules.
That doesn't even logically follow. getting out of the DMZ has nothing to do with VPNs.
And you'd never see VoIP traffic on the Internet connection as it is hidden by the VPN. Regardless, there is still no NAT involved between the different locations, thanks to the use of the VPN.
That would be flat out wrong under any construction of a DMZ and firewall. Again, this has nothing to do with the VPN.
No NAT means no STUN.
-- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
-- So many immigrant groups have swept through our town that Brooklyn, like Atlantis, reaches mythological proportions in the mind of the world - RI Safir 1998 http://www.mrbrklyn.com DRM is THEFT - We are the STAKEHOLDERS - RI Safir 2002 http://www.nylxs.com - Leadership Development in Free Software http://www2.mrbrklyn.com/resources - Unpublished Archive http://www.coinhangout.com - coins! http://www.brooklyn-living.com Being so tracked is for FARM ANIMALS and and extermination camps, but incompatible with living as a free human being. -RI Safir 2013 -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org